CVSS: 7.1EPSS: 0%CPEs: 23EXPL: 0CVE-2011-3870
https://notcve.org/view.php?id=CVE-2011-3870
27 Oct 2011 — Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file. Puppet v2.7.x antes de v2.7.5, v2.6.x antes de v2.6.11, y v0.25.x, permite a usuarios locales modificar los permisos de archivos de su elección a través de un ataque symlink al archivo authorized_keys de SSH • http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.4EPSS: 0%CPEs: 23EXPL: 0CVE-2011-3871
https://notcve.org/view.php?id=CVE-2011-3871
27 Oct 2011 — Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x, when running in --edit mode, uses a predictable file name, which allows local users to run arbitrary Puppet code or trick a user into editing arbitrary files. Puppet v2.7.x anterior a v2.7.5, v2.6.x anterior a v2.6.11, y v0.25.x, cuando se ejecuta el modo --edit, usa un nombre de fichero predecible, permitiendo a usuarios locales ejecutar código Puppet arbitrario o engañando a un usuario a editar ficheros arbitarios • http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 3.7EPSS: 2%CPEs: 24EXPL: 1CVE-2011-3872
https://notcve.org/view.php?id=CVE-2011-3872
27 Oct 2011 — Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when signing an agent certificate, adds the Puppet master's certdnsnames values to the X.509 Subject Alternative Name field of the certificate, which allows remote attackers to spoof a Puppet master via a man-in-the-middle (MITM) attack against an agent that uses an alternate DNS name for the master, aka "AltNames Vulnerability." Puppet v2.6.x antes de v2.6.12 y v2.7.x antes de v2.7.6, y Puppe... • https://github.com/puppetlabs-toy-chest/puppetlabs-cve20113872 • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 20EXPL: 0CVE-2010-0156
https://notcve.org/view.php?id=CVE-2010-0156
03 Mar 2010 — Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or (4) /tmp/puppetdoc.aux temporary file. Puppet 0.24.x en versiones anteriores a la 0.24.9 y 0.25.x en versiones anteriores a la 0.25.2 permite a atacantes locales sobrescribir ficheros de su elección mediante un ataque de enlace simbólico (symlink) en el fichero temporal (1) /tmp/daemonout, (2) /tmp/puppetdoc.tx... • http://groups.google.com/group/puppet-announce/browse_thread/thread/4401823f6cbf6087 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 1CVE-2009-3564
https://notcve.org/view.php?id=CVE-2009-3564
06 Oct 2009 — puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files. puppetmasterd en puppet v0.24.6 no borra los grupos adicionales cuando cambia a otro usuario, lo que permite a usuarios locales acceder a ficheros restringidos. • http://projects.reductivelabs.com/issues/1806 • CWE-264: Permissions, Privileges, and Access Controls •